Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

openSUSE Leap 15.4: SUSE-SU-2024:4421-1 moderate: poppler OOB issue

opensuse
Calendar Grey December 24, 2024
Dist Opensuse Esm H88
Important poppler security update released for openSUSE Leap 15.4 rectifying out-of-bounds access vulnerability.
An update that solves one vulnerability can now be installed.

Description

This update for poppler fixes the following issues:

* CVE-2024-56378: Fixed out-of-bounds read vulnerability within the

JBIG2Bitmap::combine function in JBIG2Stream.cc (bsc#1234795)

Topics%20covered

Topics Covered

security advisory moderate security issue patch poppler out-of-bounds openSUSE

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4

zypper in -t patch SUSE-2024-4421=1

Package List

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)

* libpoppler-qt5-1-debuginfo-22.01.0-150400.3.25.1

* libpoppler117-debuginfo-22.01.0-150400.3.25.1

* poppler-debugsource-22.01.0-150400.3.25.1

* libpoppler-glib8-22.01.0-150400.3.25.1

* libpoppler-cpp0-debuginfo-22.01.0-150400.3.25.1

* libpoppler-glib8-debuginfo-22.01.0-150400.3.25.1

* typelib-1_0-Poppler-0_18-22.01.0-150400.3.25.1

* libpoppler-qt6-3-debuginfo-22.01.0-150400.3.25.1

* poppler-tools-debuginfo-22.01.0-150400.3.25.1

* libpoppler-qt5-1-22.01.0-150400.3.25.1

* libpoppler-glib-devel-22.01.0-150400.3.25.1

* libpoppler117-22.01.0-150400.3.25.1

* poppler-tools-22.01.0-150400.3.25.1

* libpoppler-qt6-3-22.01.0-150400.3.25.1

* libpoppler-qt6-devel-22.01.0-150400.3.25.1

* poppler-qt6-debugsource-22.01.0-150400.3.25.1

* libpoppler-qt5-devel-22.01.0-150400.3.25.1

* poppler-qt5-debugsource-22.01.0-150400.3.25.1

* libpoppler-devel-22.01.0-150400.3.25.1

* libpoppler-cpp0-22.01.0-150400.3.25.1

* openSUSE Leap 15.4 (x86_64)

*...

Read the Full Advisory

References

* bsc#1234795

## References:

* https://www.suse.com/security/cve/CVE-2024-56378.html

* https://bugzilla.suse.com/show_bug.cgi?id=1234795

Announcement ID: SUSE-SU-2024:4421-1
Release Date: 2024-12-24T12:40:42Z
Affected Products: * openSUSE Leap 15.4

Topics%20covered

Topics Covered

security advisory moderate security issue patch poppler out-of-bounds openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here